Question 1

Which of the following best describes the role of program frameworks in defining security components and technical controls?

Options :

A : Program frameworks evaluate the performance of individual security tools

B : Program frameworks focus on implementing specific security technologies

C : Program frameworks help organize overarching security policies and objectives

D : Program frameworks primarily define compliance requirements for regulations

Answer: C

Question 2

In a cloud context, what does entitlement refer to in relation to a user's permissions?

Options :

A : The authentication methods a user is required to use when accessing the cloud environment.

B : The level of technical support a user is entitled to from the cloud service provider.

C : The resources or services a user is granted permission to access in the cloud environment.

D : The ability for a user to grant access permissions to other users in the cloud environment.

Answer: C

Question 3

Which of the following best describes the primary purpose of cloud security frameworks?

Options :

A : To implement detailed procedural instructions for security measures

B : To organize control objectives for achieving desired security outcomes

C : To ensure compliance with all regulatory requirements

D : To provide tools for automated security management

Answer: B

Question 4

While a virtual machine is a full abstraction of an operating system, a container is a constrained place to run segregated processes while still using the kernel and other OS capabilities.

Options :

A : True

B : False

Answer: A

Question 5

Which of the following is not a characteristic of cloud as defined by the NIST?

Options :

A : Rapid elasticity

B : Cost savings for compute

C : Resource pooling

D : Measured service

Answer: B